122 matches found
PT-2022-6514
Name of the Vulnerable Software and Affected Versions Arm Mali GPU Kernel Driver versions r26p0 through r31p0 Arm Mali GPU Kernel Driver versions r0p0 through r35p0 Arm Mali GPU Kernel Driver versions r19p0 through r35p0 Description The Arm Mali GPU Kernel Driver has a vulnerability related to...
CVE-2020-12961
A potential vulnerability exists in AMD Platform Security Processor PSP that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections...
VulnCheck KEV: CVE-2021-28664
Arm Mali Graphics Processing Unit GPU kernel driver contains an unspecified vulnerability that may allow a non-privileged user to gain write access to read-only memory, gain root privilege, corrupt memory, and modify the memory of other processes...
ASB-A-174259860
In kbasememfromuserbuffer of malikbasememlinux.c, there is a possible remapping of shared read-only memory as write-able due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
QEMU: loader: OOB access while loading registered ROM may lead to code execution
An out-of-bound write access flaw was found in the way QEMU loads ROM contents at boot time. This flaw occurs in the romcopy routine while loading the contents of a 32-bit -kernel image into memory. Running an untrusted -kernel image may load contents at arbitrary memory locations, potentially...
Unspecified Vulnerability in Barco ClickShare Button R9861500D01
The Barco ClickShare Button R9861500D01 is a wireless control device for presentation systems from Barco Belgium. A security vulnerability exists in the Barco ClickShare Button R9861500D01 with firmware prior to version 1.9.0, which can be exploited by an attacker to control the execution of ROM...
CVE-2019-18827
On Barco ClickShare Button R9861500D01 devices before firmware version 1.9.0 JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running code from ROM before handing control over to embedded firmware...
Microsoft Windows XmlLite XML space Attribute Denial-Of-Service Vulnerability
This vulnerability allows remote attackers to produce a denial-of-service condition on affected installations of Microsoft Windows. Interaction with the XmlLite.dll library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw...
The vulnerability of Siemens Sinumerik programmable logic controllers lies in the improper use of protection mechanisms, allowing a perpetrator to execute arbitrary code with root privileges.
The vulnerability of Siemens Sinumerik programmable logic controllers is related to the incorrect use of protection mechanisms. Exploiting this vulnerability allows an intruder to inject code into the CRAMFS archive, which will be executed after a reboot with root privileges...
Kernel Security Bypass Vulnerability in Multiple Apple Products (CNVD-2018-00178)
Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices. macOS High Sierra is a specialized operating system developed for Mac computers. tvOS is a smart TV operating system. watchOS is a smart watch operating system...
Kernel Security Bypass Vulnerability in Multiple Apple Products (CNVD-2018-00177)
Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices. macOS High Sierra is a specialized operating system developed for Mac computers. tvOS is a smart TV operating system. watchOS is a smart watch operating system...
CVE-2017-7563
In ARM Trusted Firmware 1.3, RO memory is always executable at AArch64 Secure EL1, allowing attackers to bypass the MTEXECUTENEVER protection mechanism. This issue occurs because of inconsistency in the number of execute-never bits one bit versus two bits...
PT-2017-17801
Name of the Vulnerable Software and Affected Versions ARM Trusted Firmware version 1.3 Description The issue in ARM Trusted Firmware allows attackers to bypass the MT EXECUTE NEVER protection mechanism because RO memory is always executable at AArch64 Secure EL1. This is due to an inconsistency i...
UCloud-2 0 1 6 1 0-0 0 1: kernel‘Dirty Cow’to mention the right vulnerability Security Alert-vulnerability warning-the black bar safety net
The Linux kernel recently the outbreak of the’Dirty Cow’Vulnerability, CVE-2 0 1 6-5 1 9 5, can lead to a low-rights user to achieve the local extraction rights. Please check you are using the kernel is in the affected range, and timely upgrades. The scope of the impact Linux kernel =2.6.22...
[ASA-201610-14] linux: privilege escalation
Arch Linux Security Advisory ASA-201610-14 ========================================== Severity: High Date : 2016-10-22 CVE-ID : CVE-2016-5195 Package : linux Type : privilege escalation Remote : No Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package linux before version...
[ASA-201610-11] linux-lts: privilege escalation
Arch Linux Security Advisory ASA-201610-11 ========================================== Severity: High Date : 2016-10-21 CVE-ID : CVE-2016-5195 Package : linux-lts Type : privilege escalation Remote : No Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package linux-lts before...
USN-3106-1 linux vulnerability
It was discovered that a race condition existed in the memory manager of the Linux kernel when handling copy-on-write breakage of private read-only memory mappings. A local attacker could use this to gain administrative privileges...
The exception in the exception--by means of a system of exception handling exception achieve incredible exploit-vulnerability warning-the black bar safety net
Memory read, write, execute attribute is system security the most important one of the mechanisms. Usually, if you want to overwrite the data in memory, you must first ensure that the block of memory having a write attribute, if you want to execute a piece of code in memory, you must first ensure...
Apple TV and iOS Kernel Shared Memory Subsystem Elevation of Privilege Vulnerability
Apple iOS is the latest operating system for Apple's iPhone and iPod touch devices. Apple TV is Apple's way of allowing photos, videos and music from PCs and iPods to be transmitted wirelessly to a TV in high definition. Apple TV and iOS handle a security issue with the kernel's shared memory...
security flaw
Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issue with CVE-2006-1524, but they are different bug...